search cancel

New ACO parameter in r12.8x


Article ID: 198885


Updated On:


CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Agents (SiteMinder) CA Single Sign On Federation (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) SITEMINDER


We upgraded the PolicyServer from r12.51x to r12.8x.
It has new ACO parameter, but following three parameters are not documented in r12.8 tecdoc.



Release : 12.8



They are explained on following tecdoc and kb.

  • ConformToRFC6265

New ACO Parameter ConformToRFC6265
From 12.52 SP1 CR09, you can use the ConformToRFC6265 ACO parameter to specify whether a leading dot must be appended to a domain name when the value of CookieDomain is empty.
Multiple SmSession Cookies are being generated for Federation Partnership setup


  • ValidErrorPageDomain

Open redirect issue smerrorpage


  • PreserveUniversalId

New ACO Parameter preserveuniversalID
From 12.52 SP1 CR08, you can configure the preserveuniversalid ACO parameter to set Universal ID to non-protected resources too when a valid SMSESSION cookie is available.